You are here: Home/OSINT/ OSRFramework: The Open Sources Research Framework!

OSRFramework: The Open Sources Research Framework!

Posted: 2 years ago by @pentestit6890 viewsUpdated: July 4, 2017 at 12:08 am

As the title suggests, OSRFramework is an open source research framework that helps you glean data from multiple sources. This information can be most helpful in multiple OSINT engagements where you are trying to get as much information about a target – user, domain, phone number, DNS lookups, information leaks research, deep web search etc.

What is OSRFramework?

OSRFramework is an open source research framework in Python that helps you in the task of user profiling making use of different OSINT tools. The framework itself is designed reminiscent to the Metasploit framework. It also has a web-based GUI which does the work for you if you like to work without the command line. These are the modules that are currently implemented in the OSRFramework:

usufy.py: A tool that verifies if a username exists in 306 different platforms.

mailfy.py: A tool to check if a username has been registered in up to 22 different email providers.

searchfy.py: A tool to look for profiles using full names and other info in 7 platforms.

domainfy.py: A tool to check the existence of a given domain in up to 1567 different TLD.

phonefy.py: A tool that checks if a phone number has been linked to spam practices in 4 platforms.

entify.py: A utility to look for regular expressions using 13 patterns.

Getting in the details of usufy.py, these are the different platforms that are checked by this tool:

All these results can be imported into Maltego so that this data can be shown graphically.

Install OSRFramework:

OSRFramework 0.16.8 can be installed on Windows as well as the *NIX platform. All it needs are the following components – BeautifulSoup, Requests, Mechanize, pyDNS, python-whois, tweepy, Skype4Py, Python-emailahoy, Multiprocessing. Installation is easy. Simply run:

pip install osrframework

If there is a mismatch between the pip and GIT versions, you can start by checking out the GIT repository. Then, you have two more choices:

python osrframework_server.py

which runs a GUI based on the HTTP server at http://localhost:30230 or use the Metasploit framework like console by running:

python osrframework.py

The third option is where you can run individual modules. For example:

Featured Post

Three days ago, an updated version – Sysdig Falco v0.15.0 – was released. It has been some time since I last blogged about this open source behavorial activity monitor which has container support. This release incorporates a lot of rule updates that are now also tagged the for MITRE ATT&CK Framework and patches CVE-2019-8339, a medium severity vulnerability.Read more about UPDATE: Sysdig Falco v0.15.0